Keycloak Outage

 It is a strange behavior that I learned today.

We run keycloak in HA in K8S. Bitnami chart. Nothing fancy.

We have a volume for the custom theme.

If I remove the theme files and put new one in place... All pods will restart...

This was very unexpected.

Next time we replace the theme we will need to have a maintenance window.

Security Headers

 A useful site to check your deployed application:

Security Headers Scanner

It easily shows you what you have set properly and what is missing.

Gives you a grade that is color coded.

It helps to get this done before a pen test.